What is “regulatory hosting”?

In the UK, regulatory hosting is where an FCA-authorised principal firm oversees one or more Appointed Representatives (ARs) who carry on certain regulated activities under the principal’s permissions. The host’s core role is oversight—monitoring and controlling the activities of its ARs, rather than running a large book of regulated business itself. The FCA explicitly recognises and supervises this model and sets expectations for principals that provide regulatory hosting services. FCA

Why do firms use it?

• Speed to operate: ARs can undertake specified regulated activities without obtaining their own direct authorisation, provided the principal approves and supervises those activities. FCA
• Shared compliance infrastructure: Principals are responsible for fitness & propriety checks, systems & controls, and ongoing monitoring—reducing the operational burden on ARs (though ARs must still meet agreed standards). FCA
• Focus on the commercial mission: Teams can concentrate on origination, investor relations, or distribution while leveraging the host’s permissions and policies. (This benefit follows from the regime structure; the FCA stresses that principals—not ARs—carry the ultimate regulatory accountability.) FCA+1

Note: The FCA has tightened the AR regime in recent years to improve consumer protection and market integrity, increasing data, oversight and control requirements for principals. FCA+1</I

How the UK model works (FCA AR regime)

Legal basis & framework. The AR regime is set in legislation and the FCA Handbook. A principal may appoint an AR to carry on certain regulated activities. The principal must assess and approve the scope, put governance and reporting in place, and remain fully responsible for the AR’s conduct. FCA

Oversight expectations. The FCA expects principals that “host” ARs to have proportionate, risk-sensitive systems, including pre-appointment due diligence, clear contractual limits, training & competence, financial control, complaints handling, and periodic file reviews/MI. Where a principal positions itself as a regulatory host, the FCA expects enhanced clarity on responsibilities and timely notifications. FCA

Recent reforms. Policy Statement PS22/11 introduced extra requirements (e.g., more data on ARs, stronger monitoring, and clearer responsibilities for principals) with effect from late 2022. Firms offering regulatory hosting have since faced more supervisory scrutiny. FCA+2FCA+2

How the US landscape differs (Broker-Dealer & related rules)

There is no direct US equivalent to the UK “regulatory hosting” label. Instead, the relevant concepts sit under broker-dealer registration and supervision:

Who must register. In the US, anyone “engaged in the business” of effecting securities transactions for others generally must register with the SEC and become a FINRA member (or work as a supervised “associated person” of a registered broker-dealer). The SEC’s guide outlines the factors regulators use (e.g., solicitation, transaction-based compensation). SEC+1

Paying unregistered “finders.” FINRA Rule 2040 restricts member firms from paying transaction-based compensation to unregistered persons, except in limited circumstances. This rule is central to compensation structuring for introductions and distribution support. FINRA+1

Narrow federal relief for some M&A activity. Since March 2023, certain M&A brokers engaged in qualifying private company transactions have a federal exemption from SEC broker-dealer registration, subject to strict criteria (e.g., company size thresholds and activity limitations). This relief is narrow and does not create a general “hosting” pathway for capital raising. State law still matters. Jones Day+1

What firms actually do in practice. US professionals who market securities or take transaction-based compensation typically:

• Affiliate with a registered broker-dealer as an associated person (subject to that firm’s supervision, compliance policies, and FINRA rules), or
• Operate outside securities activities (e.g., strictly non-brokered consulting) to avoid triggering registration—being careful about solicitations, success fees, and other broker “badges.” SEC+1

Core benefits (when done right)

Regulatory clarity & coverage

UK: ARs operate under a principal’s permissions with defined, supervised scopes—helpful for firms that need to perform specific regulated activities without becoming directly authorised, provided they accept the principal’s controls. FCA
US: Affiliating with a registered broker-dealer provides the necessary regulatory umbrella and supervision for securities activities, reducing the risk of “unregistered broker” issues. SEC+1

Operational leverage

Access policies, procedures, training, record-keeping, financial promotions reviews, and surveillance tools run by the principal/BD. FCA+1

Faster routes to market

UK AR appointments can be quicker than full FCA authorisation (though principals still must complete rigorous due diligence). In the US, affiliating with a BD may be faster than launching a new member firm. FCA+1

Commercial flexibility within defined limits

The model supports specialist teams (placement, distribution, or advisory) operating with compliant scopes, while the principal/BD enforces guardrails. (Regulators emphasise that accountability sits with the supervising firm.) FCA

When regulatory hosting (or a BD affiliation) may not fit

• Activities exceed permitted scope or require direct authorisation/membership (UK) or full broker-dealer licensure (US). FCA+1
• Desire for full autonomy over systems, P&L, and risk appetite (some firms ultimately pursue their own authorisation or BD membership). FINRA
• Compensation models that rely on paying unregistered persons transaction-based fees (generally not permitted for FINRA members except in narrow circumstances). FINRA

Implementation checklist

In the UK (AR under a regulatory host):

• Map activities to the FCA-permitted scope; confirm they fit the principal’s permissions.
• Complete due diligence, AR agreements, and conflicts/financial promo frameworks.
• Agree MI, file reviews, and reporting cadence with the principal; prepare for FCA data requests. FCA+1

In the US (affiliating with a broker-dealer):

• Determine if activities trigger broker status (solicitation, transaction-based pay).
• Join a BD as an associated person (licensing, exams, OBA/PST reviews) or register a new BD (time- and cost-intensive).
• Structure compensation to comply with Rule 2040; consider whether the M&A broker exemption applies (narrow). Jones Day+3SEC+3FINRA+3

Summary

Regulatory hosting (UK) and broker-dealer affiliation (US) are established pathways for teams that need to conduct regulated distribution or advisory work without building a full in-house regulatory machine on day one. Both models can accelerate time-to-market and provide robust compliance infrastructure—with the trade-off that the supervising firm sets the rules and bears oversight responsibility. Recent reforms in the UK (PS22/11) and continuing enforcement in the US (e.g., Rule 2040) underscore a trend toward tighter controls, greater data visibility, and a clear line of accountability for supervised activity.